$ rpki-client -vvf repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa File: 3230322e36352e3131322e302f32302d3231203d3e203233393531.roa (raw, json) Hash identifier: la3Lo26Aa17Lz+dfnwUc2WZ/Zq7gWX7qsfEvtWc9abY= Subject key identifier: 2F:B7:06:94:83:EE:C3:11:E4:33:71:B4:40:FC:AE:F7:65:43:00:D5 Certificate issuer: /CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Certificate serial: 1C504E0354DE9ED85C8BB5CCE18FA21A7C719A61 Authority key identifier: CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa Signing time: Tue 22 Jul 2025 06:00:01 +0000 ROA not before: Tue 22 Jul 2025 05:55:01 +0000 ROA not after: Tue 21 Jul 2026 06:00:01 +0000 asID: 23951 IP address blocks: 202.65.112.0/20 maxlen: 21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 02:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:50:4e:03:54:de:9e:d8:5c:8b:b5:cc:e1:8f:a2:1a:7c:71:9a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F Validity Not Before: Jul 22 05:55:01 2025 GMT Not After : Jul 21 06:00:01 2026 GMT Subject: CN=2FB7069483EEC311E43371B440FCAEF7654300D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fe:a2:c4:e5:c3:19:b9:ea:5a:87:56:62:92: 30:7a:ac:cb:f1:ea:22:6c:f6:4e:42:d0:93:85:ba: 77:1b:c8:f8:30:5d:ad:03:fb:4e:29:c1:86:21:21: 36:fe:f3:42:ea:a3:ed:23:88:87:64:66:fc:a4:78: 52:f5:90:53:51:de:61:6d:e3:06:64:16:90:93:61: 1a:13:8a:73:60:09:c3:cc:0b:f0:30:4e:b3:7d:6e: f6:7a:ba:fa:e3:18:68:64:21:73:d9:dc:20:97:04: 93:83:43:6d:41:11:c3:98:3c:2e:7f:44:fa:09:70: 28:5d:e9:bf:84:4d:c4:37:ad:a7:32:55:6a:c0:88: 6d:27:2e:84:f4:97:d2:49:81:02:ba:ac:44:e4:fb: 3f:3b:37:48:1f:d6:71:9d:ea:82:2a:22:05:b5:51: 6e:41:1b:dd:68:a3:86:26:71:85:03:ee:1d:72:c3: 15:41:6f:7a:33:d1:f7:75:77:d8:5b:10:b5:c9:c1: a8:4e:77:4a:cf:9a:4d:45:f2:3e:98:bc:55:f9:d4: 7f:30:72:72:df:ae:ac:3e:5e:b8:3c:41:fe:cb:6d: 76:54:c4:32:02:c6:5b:10:db:53:b7:8c:a2:eb:67: d4:fb:fb:e1:33:33:ab:38:b4:24:14:ab:7e:d1:9b: 46:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B7:06:94:83:EE:C3:11:E4:33:71:B4:40:FC:AE:F7:65:43:00:D5 X509v3 Authority Key Identifier: keyid:CA:35:BA:C7:A4:05:DF:1E:D9:ED:62:F0:9D:2F:4F:2E:14:3C:8E:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA35BAC7A405DF1ED9ED62F09D2F4F2E143C8E8F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1e6a7e46-b6ad-4a7d-b930-1ab0bf02dd5d/0/3230322e36352e3131322e302f32302d3231203d3e203233393531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.65.112.0/20 Signature Algorithm: sha256WithRSAEncryption 48:b2:72:34:0b:bd:de:28:65:a4:9e:f7:ad:f6:9a:81:32:03: 40:3f:f1:84:85:67:ae:d0:24:35:f9:7b:ec:86:5a:c5:81:95: d2:5c:eb:c4:99:6b:dc:fd:7e:65:23:ef:db:cf:3a:3b:11:26: ae:08:f0:34:09:8c:93:95:a9:2d:8b:62:ae:75:f7:6f:55:78: b8:88:9e:e4:01:81:c3:86:7f:32:10:1c:ac:d2:2d:81:ff:cb: 2e:56:46:f4:4e:fe:da:37:cd:74:8e:3e:ca:75:25:e3:7d:8f: 48:b1:91:95:82:14:b0:cf:7a:9f:b2:d4:0c:4c:93:ca:8a:03: e0:99:c8:03:da:a8:3d:44:ea:5d:c1:9f:71:e1:ef:71:a5:63: 7e:6d:8e:8c:b8:53:a2:7e:f3:ca:09:97:e2:7e:ae:66:9e:4b: 83:70:fe:4e:af:ee:b4:a6:90:92:98:95:ab:94:0f:91:99:16: 25:a3:38:c9:c4:ec:a6:cc:ee:e4:ae:c3:28:3e:97:e3:22:12: 55:96:85:52:bf:b6:e8:e5:12:14:6c:51:58:9c:7a:b6:59:5b: bf:9f:83:61:2f:8f:8a:c7:35:4a:a7:eb:b2:ba:df:63:c6:5a: 3a:2a:5e:89:0e:e1:28:27:d2:9b:2e:e7:c6:85:99:24:a8:0d: 89:58:e8:7d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUHFBOA1Tenthci7XM4Y+iGnxxmmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUx NDNDOEU4RjAeFw0yNTA3MjIwNTU1MDFaFw0yNjA3MjEwNjAwMDFaMDMxMTAvBgNV BAMTKDJGQjcwNjk0ODNFRUMzMTFFNDMzNzFCNDQwRkNBRUY3NjU0MzAwRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/qLE5cMZuepah1ZikjB6rMvx 6iJs9k5C0JOFuncbyPgwXa0D+04pwYYhITb+80Lqo+0jiIdkZvykeFL1kFNR3mFt 4wZkFpCTYRoTinNgCcPMC/AwTrN9bvZ6uvrjGGhkIXPZ3CCXBJODQ21BEcOYPC5/ RPoJcChd6b+ETcQ3racyVWrAiG0nLoT0l9JJgQK6rETk+z87N0gf1nGd6oIqIgW1 UW5BG91oo4YmcYUD7h1ywxVBb3oz0fd1d9hbELXJwahOd0rPmk1F8j6YvFX51H8w cnLfrqw+Xrg8Qf7LbXZUxDICxlsQ21O3jKLrZ9T7++EzM6s4tCQUq37Rm0Z7AgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUL7cGlIPuwxHkM3G0QPyu92VDANUwHwYDVR0j BBgwFoAUyjW6x6QF3x7Z7WLwnS9PLhQ8jo8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZTZhN2U0Ni1iNmFkLTRhN2QtYjkzMC0xYWIwYmYwMmRkNWQvMC9DQTM1QkFDN0E0 MDVERjFFRDlFRDYyRjA5RDJGNEYyRTE0M0M4RThGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0EzNUJBQzdBNDA1REYxRUQ5RUQ2MkYwOUQyRjRGMkUxNDND OEU4Ri5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFlNmE3ZTQ2LWI2YWQtNGE3ZC1i OTMwLTFhYjBiZjAyZGQ1ZC8wLzMyMzAzMjJlMzYzNTJlMzEzMTMyMmUzMDJmMzIz MDJkMzIzMTIwM2QzZTIwMzIzMzM5MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMpBcDANBgkqhkiG 9w0BAQsFAAOCAQEASLJyNAu93ihlpJ73rfaagTIDQD/xhIVnrtAkNfl77IZaxYGV 0lzrxJlr3P1+ZSPv2886OxEmrgjwNAmMk5WpLYtirnX3b1V4uIie5AGBw4Z/MhAc rNItgf/LLlZG9E7+2jfNdI4+ynUl432PSLGRlYIUsM96n7LUDEyTyooD4JnIA9qo PUTqXcGfceHvcaVjfm2OjLhTon7zygmX4n6uZp5Lg3D+Tq/utKaQkpiVq5QPkZkW JaM4ycTspszu5K7DKD6X4yISVZaFUr+26OUSFGxRWJx6tllbv5+DYS+Pisc1Sqfr srrfY8ZaOipeiQ7hKCfSmy7nxoWZJKgNiVjofQ== -----END CERTIFICATE-----Generated at Thu Aug 7 23:56:35 2025 by rpki-client